In light of recent supply chain attacks, I think it would be great to use immutable releases so that the tag cannot be rewritten by an attacker.
This is quite easy to setup as well: https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases
In light of recent supply chain attacks, I think it would be great to use immutable releases so that the tag cannot be rewritten by an attacker.
This is quite easy to setup as well: https://docs.github.com/en/code-security/supply-chain-security/understanding-your-software-supply-chain/immutable-releases